49.85.48.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.85.48.244	attack	Automatic report - Banned IP Access	2019-11-03 19:41:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.48.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13951
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.48.141.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061401 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 15 13:12:04 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 141.48.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.48.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.162.139.111	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-18 13:22:19
79.109.201.161	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.109.201.161/ ES - 1H : (54) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ES NAME ASN : ASN12357 IP : 79.109.201.161 CIDR : 79.109.200.0/21 PREFIX COUNT : 741 UNIQUE IP COUNT : 753664 WYKRYTE ATAKI Z ASN12357 : 1H - 1 3H - 2 6H - 2 12H - 2 24H - 2 DateTime : 2019-10-18 05:54:39 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-18 13:51:43
101.96.113.50	attack	Oct 18 08:03:12 server sshd\[31364\]: User root from 101.96.113.50 not allowed because listed in DenyUsers Oct 18 08:03:12 server sshd\[31364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 user=root Oct 18 08:03:14 server sshd\[31364\]: Failed password for invalid user root from 101.96.113.50 port 35364 ssh2 Oct 18 08:08:02 server sshd\[23600\]: User root from 101.96.113.50 not allowed because listed in DenyUsers Oct 18 08:08:02 server sshd\[23600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 user=root	2019-10-18 13:23:48
92.119.160.80	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-10-18 13:29:55
217.125.110.139	attackbots	Oct 17 23:54:12 debian sshd\[12017\]: Invalid user ts from 217.125.110.139 port 53926 Oct 17 23:54:12 debian sshd\[12017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.125.110.139 Oct 17 23:54:15 debian sshd\[12017\]: Failed password for invalid user ts from 217.125.110.139 port 53926 ssh2 ...	2019-10-18 14:05:29
158.69.27.201	attackbotsspam	158.69.27.201 - - [18/Oct/2019:05:54:42 +0200] "POST /wp-login.php HTTP/1.1" 200 2112 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 158.69.27.201 - - [18/Oct/2019:05:54:43 +0200] "POST /wp-login.php HTTP/1.1" 200 2093 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-18 13:48:19
219.90.115.237	attack	Automatic report - Banned IP Access	2019-10-18 13:59:06
178.128.21.57	attackspambots	Oct 18 05:36:28 venus sshd\[12526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.57 user=root Oct 18 05:36:30 venus sshd\[12526\]: Failed password for root from 178.128.21.57 port 35970 ssh2 Oct 18 05:41:07 venus sshd\[12596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.57 user=root ...	2019-10-18 13:43:32
46.105.99.163	attack	B: /wp-login.php attack	2019-10-18 14:02:14
196.20.229.157	attackbotsspam	Oct 18 06:30:51 XXX sshd[36865]: Invalid user mona from 196.20.229.157 port 50876	2019-10-18 14:00:08
193.112.219.176	attackbotsspam	Oct 18 06:57:41 h2177944 sshd\[8915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176 user=root Oct 18 06:57:43 h2177944 sshd\[8915\]: Failed password for root from 193.112.219.176 port 43508 ssh2 Oct 18 07:02:48 h2177944 sshd\[9511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176 user=root Oct 18 07:02:50 h2177944 sshd\[9511\]: Failed password for root from 193.112.219.176 port 51690 ssh2 ...	2019-10-18 14:03:53
123.206.17.141	attackspambots	2019-10-18T06:01:06.000391shield sshd\[28182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.17.141 user=root 2019-10-18T06:01:08.062585shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2 2019-10-18T06:01:11.322635shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2 2019-10-18T06:01:13.448473shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2 2019-10-18T06:01:15.849950shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2	2019-10-18 14:04:38
213.230.121.140	attackspambots	Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: CONNECT from [213.230.121.140]:5456 to [176.31.12.44]:25 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19486]: addr 213.230.121.140 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19483]: addr 213.230.121.140 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19483]: addr 213.230.121.140 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19487]: addr 213.230.121.140 listed by domain bl.spamcop.net as 127.0.0.2 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19485]: addr 213.230.121.140 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: PREGREET 24 after 0.12 from [213.230.121.140]:5456: EHLO [213.230.121.140] Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: DNSBL rank 5 for [213.230.121.140]:5456 Oct x@x Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: HANGUP after 0......... -------------------------------	2019-10-18 14:09:34
51.38.49.140	attack	Oct 18 06:40:54 bouncer sshd\[7336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.49.140 user=root Oct 18 06:40:57 bouncer sshd\[7336\]: Failed password for root from 51.38.49.140 port 35308 ssh2 Oct 18 07:00:51 bouncer sshd\[7415\]: Invalid user ftp from 51.38.49.140 port 48542 ...	2019-10-18 13:23:29
180.96.28.87	attackbots	Oct 18 03:54:07 anodpoucpklekan sshd[83558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.28.87 user=root Oct 18 03:54:09 anodpoucpklekan sshd[83558]: Failed password for root from 180.96.28.87 port 11246 ssh2 ...	2019-10-18 14:08:11

Recently Reported IPs

49.85.48.125	49.85.48.174	45.87.214.110	45.184.71.94
49.83.7.64	49.82.14.4	36.65.200.0	36.65.135.25
36.65.228.211	38.135.240.27	78.38.111.242	78.38.176.12
78.39.81.174	49.85.3.146	49.85.0.75	49.85.0.18
49.85.2.59	49.85.6.114	49.85.5.162	78.39.231.228